Skip to main content

Superfish 2.0: Second security flaw leaves Dell PC users vulnerable to hackers

posted onNovember 26, 2015
by l33tdawg
Credit:

DELL isn't having a good week. A second root certificate has been found on its PCs and laptops, that could leave users' personal information vulnerable to hackers.

The second certificate, called DSDTestProvider, is installed by an application called Dell System Detect (DSD), which users are prompted to download and install when they visit the Dell support website.

Carnegie Mellon University CERT said in an advisory that the flaw allows hackers to create trusted certificates and impersonate sites and launch man-in-the-middle attacks. "An attacker can generate certificates signed by the DSDTestProvider CA. Systems that trusts the DSDTestProvider CA will trust any certificate issued by the CA," it said.

Source

Tags

Dell Security

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th